AWS identity and Access Management is used to manage secure access to AWS services and Resources.

IAM is a feature of AWS account offered at no additional charge, You get charged only for the use of other AWS services by your users.

A collection of users will often need a similar set of permissions. An IAM group can be used to define permissions for multiple users.

When IAM users are added to a group, they inherit all the permissions attached to the group.

A user group can contain many users and a user can belong to multiple user groups.

User groups can be nested they can contain only users, and not other user groups.

There is no default user group that automatically includes all users in the AWS account. If you need user groups of that nature, you have to create it and assign each new user to it.

After creating policies a special url is generated so an admin can login, and try accessing and implementing the policy which has been applied

https://796341583826.signin.aws.amazon.com/console

In this instance, we tried deleting an EC2 Instance but got the below error message.